ere 
CHAPTER 


THE ROLE OF THE SYSTEM 
ADMINISTRATOR 


After reading this chapter and completing the exercises, 
you will be able to: 

+ Explain the work of a system administrator 

+ Discuss the responsibilities of a system administrator 

+ Use basic system administration commands in Linux 


l the previous chapter you learned about the Linux command-line environ- 
ment (the shell) and how to use different text editors and text- processing 
tools to create scripts and work effectively at the command line. 


In this chapter you will look at the role of a Linux sytem administrator. T he 
topics in this chapter lay the foundation for the rest of this book, which covers 
in detail the separate tasks performed by a system administrator. 


WORKING AS A SYSTEM ADMINISTRATOR 


T he job of a system administrator is to make technology work and continue to work.W hile 
others may develop programs or devices with great potential, the sytem administrator ties 
them into complete, operational systems that can increase productivity, lower costs, or other- 
wise benefit those who use the technology. The system administrator keeps these systems 
running efficiently as new pieces are added, changes occur, and reconfigurations and failures 
alter the face of the original ystems T he job of the system administrator is primarily practi- 
cal. It requires perseverance, patience, curiosty, creativity, and technical knowledge.To be truly 
successful as a sytem administrator, you must continue to increase both the breadth (num- 
ber of subjects) and depth (expertise in a subject) of your technical knowledge. If you don't, 
new problems will come along that you won't know how to solve At the same time, you will 
lack the ability to integrate new technologies into your systems or to determine how they 
apply to your environment. 


A sytem administrator generally works as part of the Information Systems (IS) or 
Information Technology (IT) Department of an organization. In a large organization, 
this group reports to a chief information officer (CIO). In smaller organizations, a 


233 


234 


Chapter7 The Role of the System Administrator 


group of sytem administrators might consult other company officers to make decisions 
about information technology. The IS or IT Department is concerned only with internal 
information systems. In technology organizations (such as companies that develop software 
or sell computers or telecommunications equipment), the team that develops software and 
hardware for sale to othersisnot generally part of the IS or IT Department. Figure 7-1 shows 
the postion of a system administrator in a typical small or large company. 


In addition to working with technology, sytem administrators also work with people T hey 
may work primarily with a group of technical colleagues in their department, but they also are 
likely to interact with most of the organization as they answer questions, solve technical prob- 
lems, train users, install software, and so forth. In larger organizations, the taks of working with 
end users and maintaining the systems are divided into different areas. For example, the IS team 
may manage the servers, while the Help Desk team directly solves problems for end users 
(those who use computer systems to accomplish their daily work). In such an environment, 
you, as a system administrator, can focus on the particular area that best suits your interests. T he 
same technical knowledge and problem-solving ability are required for both types of work. 


Small Company 
President 
M anager of IS/ VP M arketing VP Product VP Sales 
Lead System Administrator Development 
Staff of Jr. 


System Administrators 


Large Company 


ee CEO CIO 
President 


Other Departments VP of IS 
M anager of M anager of M anager of 
Internal Development Help Desk System Administration 
Staff of Staff of Staff of 
Software Engineers/ Customer Service System Administrators 
System Analysts Reps and System 


Administrators 


Figure 7-1 Role of the system administrator within large and small companies 


Working as a System Administrator 235 


Tasks of a System Administrator 


Asasystem administrator, the tasks for which you are responsble can vary considerably based 
on factors such as 


= Your expertise and specific job position 
= Your seniority in an organization 
= The sze of the organization 
T he following list describesin detail some of the common tasksa sytem administrator performs. 


a Creating new user accounts and making changes in user accounts, such as granting 
new access permissons as assignments change. 


a Maintaining sytem hardware, including installing new hardware as part of 
increasing system capacity, replacing damaged systems, or upgrading obsolete 
components. 


= Training end users to effectively use new systems, software, or procedures. 


m Performing other occasonal or recurring tasks that keep the system running 
smoothly. Some of these are routine, such as backing up files others require more 
creativity, such as determining why system response time has dowed, or tracking 
down an intruder from the Internet. 


= Documenting the sytem so that other system administrators can understand your 
work.T his might include informing others of how applications are configured, 
where back-up files are stored, and which users have had specific problems with 
certain hardware or applications T his task is often related to the next one 


m Defining procedures and policies related to how systems are administered at your 
site. Among other things, a sytem administrator might need to define back-up 
procedures, privacy and security policies, user guidelines, or a disaster plan. (All of 
these topics are discussed in future chapters) 


m Recovering from emergencies to get a system running again after a power out- 
age, hardware failure, employee problem, or natural disaster. 


a Planning a sytem.W hen working within small organizations or departments, or 
as you gain experience in a large organization, you may be asked to decide on 
new hardware purchases or plan for future system components or designs to meet 
anticipated needs. 


In addition to the core tasks listed above, you may be aked to: 
a Inform management of potential technical needs for upgrades. 
a Watch for security threats and implement remedies when possble. 


= Keep yourself up-to-date regarding new developments in your field. Staying cur- 
rent allows you to take advantage of new developments that could benefit the 
employer's information technology strategy and increase your value to your 
employer (and to future employers). 


236 


Chapter7 The Role of the System Administrator 


Ethics and the System Administrator 


Working as a system administrator involves many ethical issues that may not be evident at 
first. AS a sytem administrator you have control— full or partia—over an organization's 
computer systems Implicit in this responsibility is a great deal of trust on the part of both 
the company (its officers, managers, and owners) and the individual employees who use the 
systems that you manage. T he way you view this trug will likely determine how effective 
you are as a sytem administrator. 


Employers pay you to maintain their systems in a way that contributes to the success of their 
organization. Your role also has an important effect on individual users Although you may 
be working behind the scenes most of the time (and probably should be if things are run- 
ning snoothly), remember that your fellow employees count on your work in order to do 
theirs.A lack of preparation or accuracy on your part can lead to companywide downtime, 
corrupted or lost files, malfunctioning printers, and % forth. As a result, none of the other 
employees can be productive Everyone in a modern office relies on the work of a good ys- 
tem administrator every workday. 


Along with thiscontrol over the working lives of others comes the potential for abuse of this 
power. For example, asthe system administrator with root privileges on the Linux server, you 
have the power to: 


m R ead people's e-mail and the files in their home directories 

m Alter company or personal files 

= Send falsfied messages as if they came from other users 

a Erase (“lose”) any files on the system 

m Delay fixing asystem problem or helping an employee with a imple question 
= Neglect security measures that would protect senstive data 


T hese actions are unethical because they invade others privacy and impede the work of your 
employer. M any are also illegal and would make an unscrupulous system administrator subject 
to prosecution. But as you may realize many unethical actions are likely to go undetected, epe- 
cially if you are the sole person in acompany with expertise in Linux.You should decide at the 
outset on a few rules that can guide you in your relationships with employers and fellow 
employees whose systems you manage. Your rules might include statements like these: 


a | realize that | know more about the sytems! manage than others, but | also 
realize that they know more about their job functions and what they need from 
their computer systems. 


m | will never read files that do not belong to me personally unless required to do so 
as part of a legal order or to comply with a publicly acknowledged company policy. 


a | treat other employees as my clients. Success as a system administrator depends 
on their satisfaction regarding how | meet their needs for information technology. 


Principles of Maintaining a Linux System 237 


Occasionally, a sytem administrator may decide to configure systems in such a way that no 
one else can figure out how the system is configured or used.T his is sometimes done in the 
name of job security: “T hey can't fire me” this kind of sytem administrator reasons, “or the 
entire company will have to shut down.” 


In fact, however, your best route to success as a sytem administrator (not to mention peace 
of mind) will come through making your employer successful.T his allows you to grow pro- 
fessionally, with additional respongbility and technical opportunities If you train yourself 
well, you need never feel compelled to make implied threats of holding your employer 
“hostage” because you are the only person who can maintain the computer systems. 
R emember these two rules: 


= Good jobs are always available for well-trained technical people; hence job security 
should not depend on work at a single company. Build a reputation as both a 
technical expert and a personable employee to make future employers eager to 
hire you and past employers sorry they log you. 


a |f you haven't trained yourself well, you're not worth keeping as an employee. 
Your employer can then replace you with someone who is not being territorial 
under the guise of “job security.” T he true expert will always be able to set up 
efficient, standardized, well-documented systems and have a solid career based on 
managing those systems. 


To read more about working as a sytem administrator, you should also vist the Sytem 
Administrators Guild (SAGE) at http:/ / www.usenix.org/ sage’. SAGE is part of the U SEN IX 
group, an organization for people who work with advanced computing systems that pro- 
vides tremendous resources to system administrators The SAGE Web ste contains infor- 
mation about: 


a Jobs and salary profiles 

= Local user groups 

a Technical information 

m Events where sytem administrators gather for technical conferences 


PRINCIPLES OF MAINTAINING A LINUX SYSTEM 


Compared to the other types of technical work demanded of a system administrator, learning 
about Linux is especially rewarding. W hereas some technical topics relate to mastering a pe- 
cific graphical tool or proprietary method, knowledge that you gain about Linux is generally 
applicable to a wide range of systems and stuations Although learning Linux well can be a 
challenge, that knowledge carries over to other systems For example, if you learn about the 
Domain N ame Service (DN S) on Linux, you will find that the knowledge applies to DNS 
servers on practically any system in the world. Knowledge of Linux also forms a strong foun- 
dation for learning about related topics such asT C P/ 1P routing or N IS+. O r suppose you learn 
about configuring an Apache Web server on Linux. O ther Web servers may have graphical 


238 


Chapter 7 The Role of the System Administrator 


interfaces that are easer to configure, but the concepts relating to how aWeb server operates 
and the options you learn about in detail as you work in Linux will apply to nearly every Web 
server available. 


Asyou become familiar with the Linux tools used for system administration, you may notice 
that they are different in fundamental ways from tools used on non-U N IX -like operating 
systems such asWindows NT.The history of UNIX (and thus of Linux development by 
association), followed a very different path from Windows NT. The result is that certain 
methods of solving problems have been developed on Linux and UNIX systems. As you 
learn about these methods, you will be better able to use the tools that Linux provides to 
keep your Linux systems running efficiently with the least amount of work and the fewest 
headaches. 


M any of the principles outlined in this chapter have been developed over the 30-year history 
of UNIX and Linux technology. T hirty years ago, computers were much dower, more expen- 
sve, and more difficult to use (no graphical interfaces were available until fairly recently). 
UNIX (and Linux) were originally deagned for these systems As a result, Linux is generally 
more efficient in using limited system resources. 


W hen designing an operating system for these early computers, U N IX and Linux develop- 
ers were forced to create extremely efficient operating sytems. For example, special files 
known as shared libraries allowed multiple programs to use the same set of functions stored 
in memory.T he goal of efficiency in Linux is reflected in the way the various system admin- 
istration tasks are organized. Some key facts to notice about Linux system administration are 
the following: 


a Plain-text files configure the system. Individual files control each program or 
service. 


m Everything on the Linux system is accessed as if it were a file, including devices 
and remote computer systems. 


m The entire system is designed to be used by multiple users. 


a Linux command-line utilities are usually small and simple in function, being 
designed to do just one task very well. T hey have the capacity, however, to be 
connected with other commands to complete more complex tasks. 


T he sections that follow describe some of these traits in more detail. 


Linux Configuration Files 


A full-featured Linux system may support hundreds of users and include thousands of pro- 
grams on its hard disks. M any of these programs are system or network services, such as a 
Web server, an e-mail server, or a Samba server (to allow SMB clients like Windows 98 to 
connect to Linux). O ther programs might include a graphical utility (a program used for 
system administration) on a Linux desktop such as Gnome or KDE, or an end-user program 
such asWordPerfect for Linux or ApplixWare for Linux. 


Principles of Maintaining a Linux System 239 


Each of these programs and system services creates and maintains its own set of configura- 
tion information. T he configuration files for programs run by the system administrator (and 
available to all users), such as a Web server, are normally sored in the /etc directory. 
Configuration files for programs that are used by only a single user are stored in that user's 
home directory. Programs that are used by all users on a system often include default con- 
figuration information that is applied when any user runs the program, plus user-specific 
options that are stored in a user's home directory. 


Configuration files for Linux programs and services do not follow a well-defined pattern or 
naming convention. Some configuration files end with the word conf, for configuration. 
Others end with rc, for run control. T he names of some configuration files show no indica 
tion of what the file is used for— as the system administrator, you mug simply know which 
file to look for. Some of the configuration files used by Linux are listed in Table 7-1.The 
exact location of these files varies dightly depending on the version of Linux that you use— 
most are located in the /etc directory or one of its subdirectories. 


Table 7-1 Configuration Files Used by Linux 


Filename W hat the file configures 

XF86Config XFree86 graphical system 

smb.conf Samba server 

httpd.conf Web server 

resolv.conf DNS name resolver (selects a Name server to access) 
hosts Hostnames and IP addresses used for networking access 
xinitre Programs that start along with the graphical system 


ftpaccess FTP server 
lilo.conf LILO boot loader 


bashrc Configuration script that runs when starting a shell 


passwd User account names and configuration information 


uration files in Table 7-1 by entering the command man 5 filename. 


You can immediately begin learning about the content and format of any of the config- 


Advantages of Multiple Plain-Text Configuration Files 


T he historical forces that have made Linux so powerful have also resulted in numerous and 
diverse configuration methods software developers are not required by any authority to fol- 
low agpecific pattern. In fact, U N IX systems have always used text-based configuration files. 
U sng plain-text configuration files has the following advantages: 


= You can easly write a program to manipulate the configuration of a program or 
service, because this involves basic text string manipulation. 


240 Chapter7 The Role of the System Administrator 


m Each configuration file is mall and independent, which can create a more effi- 
cient use of resources to update or query the configuration of a program. 


a |f one configuration file becomes corrupted, other configuration information is 
not affected— Linux configuration has no single point of failure or vulnerability. 


m Developers creating programs can create new configuration designs to meet their 
needs, without being constrained to fit an existing configuration architecture. 


= You can u% a Single tool (any text editor) to configure the mog complex features 
of any program or system service. 


Disadvantages of Multiple Plain-Text Configuration Files 
U sing text-based configuration files also has the following disadvantages: 


a The sytem administrator mus learn multiple configuration formats, some of 
which are highly complex, in order to set up and maintain a Linux system. 


= New programs cannot take advantage of an existing configuration method or 
architecture to peed development. 


= Text-based configuration files can be organized according to extremely complex 
rules, which often allow for many possble methods of expressing a configuration. 
T hese rules vary for each configuration file (and for possble new programs coming 
out all the time). T hese factors make it very difficult to create graphical configura 
tion tools to make Linux configuration easer to learn or manage. 


Despite the difficulty involved, many serious efforts have been made to create graphical con- 
figuration tools to ease the tak of learning to configure Linux, much as many UNIX systems 
have an overall sytem administration interface. Some of these development efforts are aimed 
at configuring a Single program, such as the A pache Web server.T he Comanche project is one 
example of this Figure 7-2 shows Comanche, a graphical utility for configuring many parts of 
the Apache Web server. 


T he Samba suite is another example of a service that you can configure using a graphi- 
cal configuration tool for configuring Linux. M any graphical tools are available to help 
you set up Samba, including Ksamba and GT K Samba, which sets up a Samba file and 
print server. GT K Samba is illustrated in Figure 7-3. 


Listening 
[P] Performance 
(Acai & Environment 
(A Logs 
(A mime management 
Directory tuning 


httpd is stopped| 


Principles of Maintaining a Linux System 


r Proxy settings 


i Enable Proxy? 


- Operation 


Hosts or domains to be blocked 


^ Block by the proxy 
wv No Proxy 
\ No Cache 


E Terminal |The GIMP Mon Noy 01 
ole el |e 8:04 AM 


[s] 


fetc/smb.conf 
| File Edit Options Help 


8 | © Ej; x 
Open Write Insert Delete Edit Insert Delete Exit 


workgroup 
server string 
printcap name 
load printers 
log file 

max log size 
security 
socket options 
dns proxy 


J 


MYGROUP 
Samba Server 
éetc/printcap 
yes 


50 

user 
TCP_NODELAY 
no 


Fri Aug 06 
09:53 AM 


Figure 7-3 GTKSamba 


242 


Chapter7 The Role of the System Administrator 


Other tools have been designed to provide a framework for all Linux configuration and 
maintenance At least three of these programs have been sponsored by Linux vendors in an 
effort to make Linux easer to use. T hese three are: 


= COAS, the Caldera O pen Administration System, sponsored by C aldera Systems 


(Shown in Figure 7-4) 


@ Ethernet Interface.. © Kernel Modules 


Sea Kernel Modules ~ 


View Models 


Please select a module to be loaded or unloaded. The list on the left shows all available modules, 
while the one on the right shows all modules currently loaded. 
=) You can restrict the display to certain categories of modules using the View menu. 


Se Ethemet Interface Configuration oe 


Please select the network device and edit its configuration. 


Network Device 


feino fai 
New device 


PNP Configuration [Disabled 7 


Interface address 


Network mask 


fi 92.168.100.1 New alias 
Fess oom Delete device 


Broadcast address fi 92.168.100.255 


CD-ROM Default route 


Ay Default gateway 
7 Init at boot time 


Enabled | 
192.168.100.3 


Enabled | 


Printer | 


OK 


Cancel | 


Figure 7-4 COAS, a graphical administration tool from Caldera Systems 


= LinuxConf, sponsored by R ed H at Software (shown in Figure 7-5) 


gnome-linuxconf 

IPX interface setup 
‘—PPP/SLIP/PLIP. 

Server tasks 

|- Exported file systems (NFS) 
{IP aliases for virtual hosts 
Domain Name Server (DNS) 
Config 

j— domains 

[IP reverse mappings 

j— secondaries 

j forwarders 

[features 

“IP allocation space 
Add/Edit 

[host information by doma 
(quick edit) 

Security 

[Access control lists 
“Access control 

Apache Web server 

j— Defaults 

j- Virtual domains 
‘—Sub-directory specs 
Samba file server 

t— Defaults 

j- Default setup for users’s hi 
+ Default setup for printers 
‘—Disk shares 

Mail delivery system (sendi 
Eh Basic 

j— basic information 
[special (domain) routing 
— complex (user) routing 
[masquerading rules 

j— mail to fax gateway 

į virtual email domain 


General access control Apache defaults 


| You can configure the base setup and 


some defaults 


Virtual domains 


Administrator email root@localhost 
Server name 

Server aliases 

Document root 

Error log logs/error_log 
Transfer log 

Agent log 

Referer log 

Script Alias 

CGI SetUID User 

CGI SetUID Group 


Listen on port 

Start servers 

Max clients per servers 

Max requests per child 
Minimum of spare servers |8 
Maximum of spare servers|20 


Accept Cancel 


“Het | 


Figure 7-5 LinuxConf, a graphical administration tool from Red Hat Software 


Principles of Maintaining a Linux System 243 


m YAST, sponsored by SuSE (shown in Figure 7-6) 


Help 


YaST - Yet another Setup Tool 
YaST Version 0,97,4 -- (c) 1994-98 S,u,S,E, GmbH 


Language: English 
Media: CD-ROM ATAPI EIDE /dew/hde 
Root-levice: /dev/hdb4 


gE [al R|| One 


Figure 7-6 YAST, a graphical administration tool from SuSE Linux 


Success in these efforts to create graphical configuration tools has been hampered because 
Linux configuration options are too varied and complex to allow asmplistic tool to be of 
much use in real life. Complete tools require substantial development time; but because 
Linux programs don't remain static for long, any developer who did invest the necessary time 
and money to create a truly comprehensive administration tool would find that the tool was 
out of date upon its releas. In addition, many Linux administrators prefer to work directly 
in text files, feeling that they have more control over the configuration without the system 
overhead of a graphical interface. 


T his introduces the question:W hy not use graphical utilities to configure Linux where possble, 
especially while learning Linux, Snce more advanced features won't be immediately needed? 


T he answer is perhaps more philosophical than practical at this tage: because someone has 
to know how the system really works As the system administrator for a Linux-based server 
or network, you will often be called on to solve problems that cannot be solved by even 
advanced graphical tools T hese problems may cross boundaries between different programs, 
and they may involve networking activity that you have no control over, or require making 
minor adjustments to configuration files that would not be available in a graphical tool. If 
you can’t get “under the hood” of the system, as the saying goes, and adjust all possible pro- 
gram parameters, your ability to keep a sytem running snoothly is much reduced.You are 
left instead clicking buttons, wondering what is really happening on a system that continues 
to have a problem you cannot diagnose or repair. 


244 


Chapter 7 The Role of the System Administrator 


Linux and most Linux programs provide the added benefit of allowing you to review 
tm the program source code. Using this method of last resort, you can fix anything, given 
enough time. But before you can take advantage of this option, you must start by 


learning how things work, not simply which buttons to click in order to complete rote 
or simple tasks. 


T he numerous plain-text configuration files in Linux provide access to all features of Linux 
programs; once you are familiar with these files, you can use them to solve any problem. 
Other operating systems put information about system services and resources into a Sngle 
configuration file An example of such afile is theW indows R egigry. Figure 7-7 shows how 
the Windows R egistry differs from the multiple configuration files used by Linux. 


Windows Linux Configuration Files 
Registry 


Ikscwjfoiekamahskf} use special 
qpbzjkoivfow dmisdtja software to 
alkjdsoia;;|k adlkoaoip view/ update 

kjoiakjdajgoil 

oiakjdfoiuewjiogalkn 

meiuw ekwjdsiekioak 


use any text 
editor to 
view/ update 


configuration file A 


configuration file B 


use numerous 
graphical tools 
to view/ update 


configuration file C 


wjkdioaeiijkeaiemnc 
monadoifenajvoieiou 
eiojancdfhaidjoielnait M ultiple configuration 
ejoiueikweoiuetnmco files 
oienacdoidnmaoiajoi 


configuration file D 


Single configuration 
database 


Figure 7-7 Registry vs. multiple configuration files 


Understanding Files, Devices, and Processes 


M anaging a Linux system includes managing all of the resources of the system: the file system, 
the devices, and the processes As you learned in Chapter 4, the default Linux file system is large 
and complex, with predefined locations for mos types of files T he task of locating, creating, 
moving, and deleting files is part of every sytem administrator’s day. T he later section “U sing 
Basic System Administration Tools” describes many of the utilities you can use to manage the 
Linux file sytem.T he following sections define the terms devices, processes, programs, and thread. 


Devices 


Devices are an important part of your system maintenance responsibilities All of the resources 
at your disposal in Linux— the hard disk, modem, mouse, sytem memory— must be accessed 
using the appropriate Linux method. Linux accesses devices by assgning them a filename in 
the /dev subdirectory, as described in C hapter 4. Later chapters, such as C hapter 14, describe 
many tools that interact with the physical devices that are part of your computer. 


Principles of Maintaining a Linux System 245 


Some of these devices are accessed directly. For example, when you configure a printer as 
described later in this book, you may refer to the /dev/1po device name T his pathname indi- 
cates your computer's first parallel port. O ther devices are accessed indirectly. For example, to 
use a hard disk, you configure access to the file sytem on that hard disk by referring to the 
device, such as /dev/hda1, and linking it to a standard directory path, such as /usr or /home. 
Linux users do not access the dix via the /dev/hda1 device name, but by referring to the 
gandard directory path (the /usr or /home directory in this example) to which access has 
been configured. 


Processes 


Processes are the individual programs running on a Linux system. Because Linux is a mul- 
titaking operating system, many programs can be running on a Linux system at the same 
time. Chapter 10 describes in detail how you can manage multiple processes to make the 
most efficient use of system resources for all users. The section “Using Basic System 
Administration Tools,” later in this chapter, describes a few common utilities that provide 
information about the processes running on Linux at any moment. 


Although process is a precise term used to describe a task that the Linux kernel is running, 
several other terms are commonly used to refer to various types of processes To avoid con- 
fusion, review the related terms in the sections that follow. 


Program 


The word program is a vague term for a piece of software that executes on the Linux ys- 
tem.A program may be composed of many different processes or tasks that Linux manages in 
concert to accomplish an overall goal, or a program may have jug one process. T he terms pro- 
gram, utility, tool, and software package are all used interchangeably when discussing software 
that runs on Linux. All of these terms are imprecise compared to using the term process, but 
they serve the purpose of outlining what is being described. 


Daemon 


A daemon is a background process It normally runs continudly, but it does not have any vid- 
ble output. An example of a daemon is an FTP server. It processes incoming requests, sending 
back files as needed, but it never displays anything on the Linux screen. Instead, information on 
the activities of a daemon is normally recorded in a log file (/var/log/xferlog in the case of 
the FTP daemon). M any daemons ae usudly running on a Linux system at any moment. T he 


246 


Chapter7 The Role of the System Administrator 
name of a daemon program usually ends with the letter d. Some of the daemons you can expect 
to se running on your Linux system after a default installation include thos listed in Table 7-2. 


Table 7-2 Daemons Running on Linux 


Daemon name Description 


Runs scripts at scheduled times (as described in Chapter 12). 
Responds to Web browser requests using the HTTP protocol. 
Watches for incoming requests of many types and starts the appropriate 


daemon to respond to the request. (Requests to Internet services such as 
FTP, Telnet, Finger, Talk, and Gopher are normally handled through inetd.) 


Records information from running programs to the system log file 
/var/log/messages. 


Thread 


A thread isa piece of a process (or a piece of a daemon, Since a daemon isa type of process). 
Threads are mot commonly used in multiprocessor environments (computers with more 
than one CPU installed).A angle tak normally performed by a process in sequential fash- 
ion can be split into multiple threads, or subtasks, that can be accomplished in parallel by 
multiple C PU s working at the same time T he distinction between processes and threads is 
not important for mog sytem administration work. Instead, the term process is used in mog 
cases that don't involve programmers developing software for multiprocessor computers. 


M ultiple Users, M ultiple Processes 


Linux was designed from its initial tages to be a multiuser operating system. As you have 
already seen, during the installation of Linux, you must create user accounts before any user 
can log on to use the system. N o one can enter commands at a Linux command line with- 
out first entering a valid username and password to log on. 


Each user account can execute multiple programs (start many processes). Each of these 
processes is associated with the user that started it and can be managed by the system 
administrator accordingly. For example, in Chapter 10 you will learn how to assgn a higher 
priority to all of a user's processes so that they are executed faster.You will also learn how 
to stop (kill) a sngle process that might be consuming too many system resources or that 
has topped working correctly. 


Because a Linux system often supports many users and each user runs many processes, the 
management of users and processes forms an important part of sytem administration. 


Using Small, Efficient Utilities 


Linux utilities (most of which are based on UN IX utilities that have been used for decades) 
usually perform only a single task. T he desgn goal for these system utilities isto do asingle 
task, offer flexibility in how to perform the task, and do it very quickly (with the mos effi- 
cient use of system resources— CPU time and disk space). 


To provide flexibility, Linux commands often have numerous options that you can add to 
modify the basic operation of the command. For example, the 1s command used to list files 
(described in the next section) supports over 40 options You can select these options by 


Principles of Maintaining a Linux System 


including them after the command name. 


Almost all Linux commands use the same format for including options Each option is rep- 
resented by either a hyphen followed by a single letter or two hyphens followed by a word 
describing the option. If single letters are used to select options, they can be combined after 
a single hyphen. If full-word descriptions are used to select options, each must be written 
out separately. In both cases, the options are listed before any filenames or other parameters 


to the command. 


Some Linux utilities, such as ps and tar, described later in this chapter, use single-letter 
options without a hyphen preceding them. 


Table 7-3 lits 10 common 1s command options. 


Table 7-3 Common Options of the 1s Command 


Single-letter format 


Full-word format 


--all 


Description 


Lists all files in a directory, including hidden files 
(files that start with “.”) 


247 


=i 

Note: Usea 
lowercase letter L 
for this option. 


--format=long 


Prints not only the names of items in a directory, 
but also their sizes, owners, dates of creation, and 
so forth 


--format=vertical 


--reverse 


Displays items in sorted columns 
Reverses the sorting order of the items being listed 


--sort=time 


Sorts items being listed by their timestamp rather 
than alphabetically 


--sort=size 


Sorts items being listed by their size rather than 
alphabetically 


none 


--color 


--help 


Displays files color coded according to type 
Displays help text with an abbreviated options list 


-I 
Note: Use an upper- 
case letter i for this 
option. 


--ignore pattern 


Does not display items matching the pattern given 


--recursive 


Lists the contents of all subdirectories as well as the 
current directory, showing the entire directory tree 


--inode 


Prints the index number for each file to the left of 
the filename 


248 Chapter 7 The Role of the System Administrator 
Both the names of Linux commands and their options are case sensitive. 
The -r option and the -R option are both valid and have very different 
Caution meanings. 
You can combine options in several ways, as the examples in Table 7-4 show. 


Table 7-4 Combining Command Options 


Command example Description of results 


Lists the contents of the current directory, including 
all files (-a), in long format (-1), sorted by size (-s), 
in reverse order (-r). 


ls -l -a -S -r Same as the previous example. 


ls -R --color Lists the contents of all subdirectories (-R), color 
coding each item shown (--color). In this exam- 
ple, no single character option for --color is sup- 
ported, so the two options cannot be combined. 
ls --format=vertical Lists all files (-a), including their index numbers (-i), 
--sort=time -ai in a vertical column, sorting them by their creation 
time and date. 


Standard Input and O utput 


M ost input and output in Linux is done using standardized channels. N ormally input comes 
from the keyboard and output goes to the screen.T hese channels can be redirected, however, 
usng redirection operators. T he redirection feature gives you great flexibility in using Linux 
utilities 

W hen a program expects input such asa line of text, it reads that information from the 
standard input channel (abbreviated STDIN). Normally, the STDIN data comes from 
the keyboard. But you can redirect input so that the program reads data from a file or from 
another program instead of the keyboard. 


When a program writes output, it normally writes to the standard output channel 
(abbreviated ST DOUT). T his information is normally written to your console screen in 
the window where the program was launched. The STDOUT data can be redirected, 
however, so that it is written directly to a file or sent to another program. 


A third standard channel, called standard error, is also used. Error messages are written to 
gandard error (abbreviated as ST DER R ) separately from STDOUT in case STDOUT has 
been redirected. O f course, the output of STDERR can also be redirected to a special loca 
tion such as an error log file. 


Principles of Maintaining a Linux System 249 


A special tool related to redirecting communication between programs is called a pipe. A 
pipe connects the output channel of one command to the input channel of another com- 
mand. Pipes are used to connect the output of one application to the input of another 
application. Figure 7-8 shows how this works conceptually. 


Without Pipes & Redirection 


| Command 1 | 1 Output 
Input / 


kokan = 
Screen 


Keyboard 


—— 


Screen 


With Pipes & Redirection 


Output 


Output Piped to Input 


Input 
File 
Pipe ib J 


Screen 


Keyboard 
Figure 7-8 Diagram of a pipe between applications 


To se a pipe in action, consider two commands 1s, which lists the contents of a directory; 
and sort, which sorts all the linesin afile.T he 1s command normally writes output to the 
screen, whereas sort normally requires a filename as a parameter. But you can combine the 
1s and sort commands by entering the following at a Linux command prompt: 


ls -1 


T he output of this 1s command is not written to the screen. Instead, it is sent (piped) to the 
sort command. Although the sort command normally requires a filename, in this cas it 
receives the names of the files it needs to sort from the 1s command.T he result is that sort 
writes to the screen the lines from 1s, sorted according to the first word in each line 


| sort 


250 Chapter 7 The Role of the System Administrator 
By combining the features of STDIN, STDOUT, and STDERR with the ability to redirect 
these communication channels and use pipes, each Linux utility can interact with other util- 
ities and files to meet the needs of users and sytem administrators Table 7-5 shows how 
input and output can be redirected. 
Table 7-5 Redirecting Input and Output 
Symbol to use in a 
command statement | Description Command-line example 
> filename Writes STDOUT output to the ls -1 > savelisting 
given filename 
>> filename Appends STDOUT output to the cat newfile >> 
given filename (adding it to the existing data 
end of any existing file contents) 
< filename Sends data from the given my script < 
filename as the STDIN, rather input_codes 
than reading from the keyboard 
Creates a pipe between two ls -1 | sort 
programs, so that the STDOUT 
output from the command on the 
left of the pipe symbol is used as 
the STDIN input for the command 
on the right of the pipe symbol 
A savvy sytem administrator knows command options and useful techniques for combin- 
ing a few basic commands to provide all sorts of useful information. The next section 
describes some of these utilities and explains how to combine them. 
Usinc Basic SYSTEM ADMINISTRATION TOOLS 


A good system administrator has a mental “toolbox” of methods for solving problems. A large 
part of this toolbox is Knowing about a number of basic Linux commands that can provide 
information about the current state of a Linux system and tune the system as needed. T his 
section describes some of these basc utilities. As described in the previous section, these tools 
are Smple in their function, but when combined, they can be powerful and extremely useful. 


In later chapters you will learn about many other utilities that are specific to certain tasks, 
such as backing up files or formatting new hard dixs T his section focuses on tools that are 
useful in a variety of circumstances If you have worked at a command line in another oper- 
ating system, some of these tools will be familiar to you. O ther tools are unique to Linux 
and UNIX environments. 


Using Basic System Administration Tools 251 


Case Sensitivity in Linux 


N early everything in Linux is case sensitive. T his can be a big change for users of other 
Operating systems. It means that typing a command in all capital letters is different from 
using all lowercase. In fact, each of the itemsin this list would be a different, distinct com- 
mand in Linux: 


m find 
m FIND 
m Find 
a FiNd 
Linux commands are all lowercase and must be entered without capital letters. 


Filenames and File Extensions 


Some operating systems use the last part of a filename as an indication of what type of data 
the file contains. For example, a file ending in . gif isa certain type of graphics file, while 
a file ending in .wpd is a certain type of word processing document. T he ending part of 
a filename is often called the file extension, from the days when a filename consisted of a 
maximum of eight letters and a three- character extension. 


Linux does not use file extensions in this way. Instead, it examines the contents of a file 
to determine its type.A file may have an extension that indicates its type, but this infor- 
mation should be regarded as a convenience for the user, not a requirement for the oper- 
ating system. For example, if you create a program using the Perl language, it can be 
named myscript.pl, using the conventional .p1 file extension, but it can also be 
named myscript_written_in_perl Or jut myscript.N one of these filenames will 
affect whether the script functions correctly. 


T his leads to another point. Filenames in Linux can be very long— up to 256 characters. 
T hey can also contain nearly any character except a forward dash (/). Linux filenames do not 
have shortened versions; they only exist as the complete filename that you see in a file list- 
ing. If you use unusual characters in a filename, such as a space or punctuation marks, you 
should enclose the filename in quotation marks % that the characters are not interpreted as 
special commands. 


Leaming About Linux Commands 


In the following sections (and in future chapters), you will learn about many Linux com- 
mands. Because most of these commands have numerous options and sometimes complex 
syntax (formatting) rules, you may need to refer to additional information as you work in 
Linux.T he Linux system provides several methods of learning about a command as you work: 


m Usethe online manual page. T hese are called man pages in the Linux world. Each 
man page contains a description of the command's syntax and all options sup- 
ported by the command, along with descriptions of how the command can be 


252 Chapter7 The Role of the System Administrator 


used, related commands, and additional information.T he man pages rarely contain 
examples of command usage, however.To view the man page, use the man com- 
mand followed by the command you wish to learn about. For example, to learn 
about the 1s command, enter man 1s. 


U se the help option for the command. M ost commands will print a summary of 
options and syntax when you enter the command with --help as a parameter. 

T his information is less complete than the man page, but may provide more 
accessible help, especially if you are already familiar with the command and only 
need a quick reminder about an option. For example, to learn about the 1s com- 
mand, enter 1s --help. 


U se the info command. For some commands, the man page is not updated reg- 
ularly. Instead, an info file is maintained with instructions on the command. For 
example, to learn about the 1s command, enter info 1s. 


U se the apropos command when you don’t know the name of the command 
to use for a task.T he apropos command returns a list of man pages that con- 
tain a keyword that you enter. For example, to see a list of all man pages that 
contain information about the LILO boot manager, enter apropos lilo.On 
some systems you must generate a database for the apropos command to use 
before apropos will return any helpful results. O n aR ed Hat Linux system, the 
command /usr/sbin/makewhatis will create such a database. 


You must already know the name of the appropriate command before you can use man 
or the help option. If you don’t know which command to use to solve a problem, use 
the apropos command or try to find a related word in the index of this book and see 
which commands that section of the book covers. 


Using Regular Expressions 


M any times, system administration tasks involve working with patterns of information. 
T hese patterns might apply to filenames, information on aWeb server, information within 
database files, or in many other locations and situations. Linux and U N IX use a ygem of 
expressing patterns called regular expressons.A regular expression provides a flexible 
way to encode different types of patterns. R egular expressions are used with many of the 
Linux commands you will learn in this chapter and in later chapters.T hey are also used in 
writing shell scripts and other types of scripts and programs that provide system adminis- 
tration functionality. A single regular expression can be used to describe each of the pat- 
terns in the following sentences: 


Lines containing the word President or president (upper- or lowercase P ) 
Filenames with the digits 18 followed by any other digits 


Text at the beginning of a line that starts with C ruise or quise and includes the 
word ship later in the same line 


Filenames that end with TIFF, TIF, Tif, T iff, tif, or tiff 


Using Basic System Administration Tools 253 


R egular expressions are amilar to using wildcards to define filenames. In DOS or Windows, 
for example, you can indicate a set of all Word files by using a wildcard statement like this 
* «doc. R egular expressons can be as smple as * . doc, but they can also include more com- 
plicated statements. Table 7-6 summarizes parts of a regular expression. It would take an entire 
book to cover all the nuances of creating regular expressons, but mastering the items listed 
here will let you take advantage of the power of regular expressions in the Linux commands 
you will be learning. 


Table 7-6 Common Regular Expressions in Linux 


Expression syntax Meaning of syntax 


* M atch zero or more characters 

? or . (a period) M atch one character 

M atch text at the beginning of a line 

M atch text at the end of a line 

M atch one of the characters in brackets 
Exclude all of the characters in brackets 


To better understand the syntax of regular expressions, tudy the examples in Table 7-7. 


Table 7-7 Sample Regular Expressions 

Example regular expression | What it matches 

[il]tal* Any word starting with | or i followed by tal, such as Italy, italy, 
Italian, italian, Italianate, italianate, and so forth. 
“[mM]us??m Text at the beginning of a line that begins with m or M, fol- 
lowed by us, two characters, and m. (The two characters are 
intended to allow misspelled versions of the word museum to 
be found.) 


Text at the end of a line that begins with 180 and ends with a 
digit from 0 to 9 (any of the years from 1800 to 1809 will match). 


Using File and Directory Management Utilities 


If you have used other computer systems, the basc file operations needed to access and 
maintain a system are probably familiar to you. For example, in every operating system, you 
move and copy files, view the contents of directories, and create new directories. T his sec- 
tion describes the utilities that Linux provides for these basc tasks.You can access all of these 
utilities from any Linux shell (any command-line interface). 


254 


Chapter7 The Role of the System Administrator 


Table 7-8 describes each of the basic file sytem management commands used by Linux.An 
equivalent command from the DO S/W indows command line is shown for reference. M ot 
of these commands have many options that you can learn about by viewing the man page 
for the command. 


Table 7-8 File System M anagement Commands in Linux 


Command Description Example of DOS equivalent 
name command usage command 


List the items in the current 
directory (or other directory 
given as a parameter) 


Change the current working cd /home 
directory to the directory 
given as a parameter 
Print working directory (show pwd cD (with no 
the current working directory) directory name 
parameter) 
Dump the contents of a file cat textfile TYPE 

to the screen 


Copy files to a new filename cp file.txt COPY 
and/or location file old.txt 


Remove (delete) a file or files rm *.txt DEL 
given as a parameter 


Remove an empty directory rmdir datadir RMDIR or RD 


M ove a file or directory to a new mv report reportold| REN or 
location, effectively renaming it if mv report MOVE 
moved to the same directory /archive/report 


M ake a new subdirectory mkdir archive MKDIR Or MD 


M ost Linux commands are separate programs that start when you enter their names at 
lm a command line. But some commands are built into the shell (the command-line inter- 
preter). These commands do not have a man page—you must read the man page for 


the shell (enter man bash) to learn more about how to use them. The only built-in com- 
mand from the table of file system commands is cd. 


Deleting Files in Linux 


To delete files in many popular operating systems, you drag or move them to a trashcan or 
recycle bin.T he deleted file remains on your system until you “empty” the trashcan or recy- 
cle bin. In effect, when you delete a file in this way, you are not really erasing the file, but 
gmply marking it for deletion when the trashcan is emptied. T his serves as a protective syys- 
tem against accidentally deleting files that you discover you need soon after you delete them. 


Using Basic System Administration Tools 255 


In many cases, even after you have emptied the trashcan or recycle bin, you can us special 
utilities to “undelete” the erased file, reassembling the contents of the file from your hard disk 
so that it is a complete file again. 


In Linux, files cannot be undeleted except in very rare circumstances W hen you use the rm 
command to remove (delete) a file, the file is immediately deleted from your hard dix. 
Because of the way Linux arranges file information on the hard disk, recovering the pieces 
of a deleted file is rarely successful. How then can you protect yourself and users on your 
system from accidentally erasing files that are later needed? H ere are a few methods used by 
some system administrators 


= Always use the rm command with the -i option, which prompts you for confir- 
mation before deleting a file T his reminds you to reconsider any need for the file 


you are about to erase. 7 
= U% a safedelete utility, which compresses and stores files in a hidden directory 7 
when they are “deleted.” From this directory, they can be undeleted later if needed. 
U sng this type of utility requires additional maintenance and disk space for the 
compressed files, but it provides a back-up copy in case deleted files are needed. 


m Usethe trashcan on one of the popular Linux graphical desktops, such as KDE or 
Gnome.T hese act like the trashcan or recycle bin in other popular operating sys- 
tems files are not truly deleted until you empty the trash. 


m Usaspecial disk tool that attempts to reassemble the pieces of a deleted file 
based on their location on your hard disk. U sing these tools rarely gives com- 
plete success, but can often recover at least part of an important file that was 
accidentally deleted. 


Finding What You Need 


Once you know some basc utilities for working with the file system, you can use more com- 
plex tools to help you locate information in files and directories. T his section describes three 
such tools: locate, find, and grep 


U se the locate command to search an index of all files on your Linux system. If Linux finds 
any directory or filename that matches your locate query, it prints the full pathname of that 
item to the screen. For example, suppose you need to locate the Web server configuration file 
on aLinux system and can’t remember where it is tored. By using the following command, 
you see a list of all occurrences of httpd.conf in the entire Linux file sytem: 


locate httpd.conf 


If you are not certain of the complete name, you can us part of it. If that partial name occurs 
anywhere in a directory or filename, the locate command lists it on screen. For example, 
you could use the following command to locate the httpd.conf file: 


locate tpd.conf 


The locate command has the advantage of being very fast, because it searches an index of 
your file sytem rather than searching the entire file system each time you make a query. U sng 


256 


Chapter7 The Role of the System Administrator 


locate has two disadvantages, however. First, if you haven’t updated the index since you 
changed your file system, you may not see the results you need (the item you're looking for 
may not be listed). Second, if you don’t know much about the name you're searching for, the 
lit printed by locate can be % large that it’s not very useful. You can’t use pecial patterns 
(regular expressions) to make a more precise query using the Locate command. 


matically updated in the middle of the night. Otherwise, you can run the updatedb com- 


If you leave your Linux system running, the file system index used by locate is auto- 
mand to update the index (a process that can take several minutes). 


The finda command als provides a lig of files that match a query string, but it provides many 
more options than locate, % it can be used for much more in-depth and powerful system 
administration work.T he fina command operates on your file sytem at the time you run a 
command; it doen't use a prebuilt index.T his means that other processes might dow down if 
you run acomplex find query.T he results can also take a few seconds to appear with find. 


T he smplest use of fina is to search for files that match a specific name pattern and print 
them to the screen. In this example, the path where the search should begin is given as 
/home, followed by the name of the file to search for and the action to take with each file- 
name found (print it to the screen). 


find /home -name report.doc -print 


The fina command uses full words as options, but preceded by only a single hyphen 
instead of two.T hese nonstandard formats can make learning each of the Linux commands 
a challenge. 


The options supported by find enable you to perform complex searches for information 
on your Linux system. For example, using a Sngle (complex) fina command, you could do 
any of the following taks 


m Create an archive file of all the files that have been modified in the lat 24 hours 
m Delete all files owned by a certain user on the Linux sytem 
= Create a lig of all files that are larger than a certain íze 
a Create a lig of all files that have specific access permissions 
m Create a lig of all files that do not have a valid owner 
In later chapters you will see find used in examples for specific tasks like those listed here. 


The locate and find commands help you locate a file with specific characteristics To search 
within a file, use the grep command. Grep can rapidly scan numerous files for a pattern that 
you specify, printing out the lines of text that include the pattern. T hese lines of text can then 
be processed according to the sytem administration task at hand. For example, suppose you 
need to see the shell used by acertain user account. R ather than open a user management tool 


Using Basic System Administration Tools 257 


or look at the /etc/passwd file in a text editor, you can enter this command and immedi- 
ately see the line of /etc/passwd that contains the information you need: 


# grep nwells /etc/passwd 
nwells:x:564:564::/home/nwells:/bin/csh 


T he last item in the response line indicates that the current default shell for user nwells is 
the C hell (esh). 


The grep command is intended for use with text files, not with binary-format data such 


as program executables. 


You can also perform much more complex searching. Suppose you have a directory full of 
text files and you want to see all occurrences of a string pattern that sarts with 
ThomasCorp.! he following command lists all of those occurrences, showing the filename 
containing the ¢ring and the complete line of text containing the string: 


grep ThomasCorp *txt 


The first parameter— ThomasCorp— is a regular expression. In this case, a specific string is 
the pattern to search for, with no special characters W hen using the grep command, an 
asterisk is never needed at the beginning or end of the string pattern (such as 
ThomasCorp*), because grep will locate the string wherever it occurs For example, grep 
would find instances of the following strings during the search: 


m ThomasCorp 
m ThomasCorporation 
m ThomasCorps 
But these strings would not be included: 
m Thomas Corporation 
m Thomascorporation 
m Thomas Nast 


T he second parameter to grep is also a regular expression that defines which files to search. 
T he asterisk in the command indicates that all files in the current directory that end with 
the letters txt should be searched. 


T he results of the grep command might include lines like these: 


m Annual_report.txt: As news of ThomasCorporation reaches 
customers around the world, we are pleased to... 


m memo0518.txt: that Rachel and I think ThomasCorp should be 
looking seriously at acquiring an interest in... 


m meetingsummary.txt: Discussed needs of ThomasCorp to 
diversify plastics manufacturing capacity for... 


258 


Chapter7 The Role of the System Administrator 


T he grep command is often used with a pipe to search the output from another command. 
For example, you can pipe the output of the locate command through the grep com- 
mand to refine a search.A sample command might look like this: 


locate tif | grep airframe 


In cases like this, grep uses only a Sngle parameter— the pattern to search for. R ather than 
include a filename to define the text to be searched, the output of the locate command is 
searched. T he results are printed to ST DO UT — the screen. 


Reviewing System Processes 


Linux includes many tools that you can use to track and interact with the many processes 
that may be running at the same time on your sytem. Two of these commands are intro- 
duced here. T hese and others are covered in detail in Chapter 10. 


The ps command lists the processes that are currently running on your Linux system. 
The process list can contain a great deal of information. Selecting various options for 
the ps command lets you control which pieces of information are included in a listing 
of processes and how that information is organized. T he basic format of the ps com- 
mand uses no parameters and produces a listing of programs that you have started in 
your current session (this is generally a short list, as shown here): 


$ ps 

PID TTY TIME CMD 
576 ttyl 00:00:00 login 
584 ttyl 00:00:00 bash 
741 ttyl 00:00:00 ps 


In this list, you see a PID (process ID) number (a unique number identifying a process); 
the terminal that the process is using for output (tty1 is the first main console screen); the 
CPU time that process has used so far; and the command that started the process. 


Other ps commands include information such as the user that started (owns) the process, 
the process priority, current status, and the PID number of the parent process (the process 
that started this one). 


An important command related to processes is the kill command.You can use the kill 
command to end a proces C hapter 9 explains more about how this occurs within the Linux 
operating system, but the smplest example of ki11 is shown here, with the PID number of 
the process you want to end: 


kill -9 873 


Key Terms 259 


CHAPTER SUMMARY 


o The role of the Linux sytem administrator is to keep Linux-based computer systems 
running efficiently, usually for the use of a group of co-workers. 


a A system administrator holds a postion of great trust within an organization and must 
use ethical practices to protect the integrity of the systems being managed. 


a Linux systems incorporate many different plain-text configuration files used to set up 
system services. T hese files each use a different format.Various graphical tools can be 
used to configure some services by automatically modifying the appropriate text files. 


o Linux administration is built on a collection of sngle-taxk utilities that can be combined 
to achieve the desired results. U nderstanding these tools and their options is the basis of 
the toolbox that a system administrator has available to solve problems. 7 


KEY TERMS 

apropos — Linux command used to show all man pages that contain a keyword. 

chief information officer (CIO ) — T he executive in an organization who determines 
how information systems are used within the organization to further its goals or mis- 
gon effectively. 

COAS (Caldera Open Administration System) — A set of graphical utilities devel- 
oped by Caldera Systems and used to manage many aspects of a Linux system. 

daemon — A background process that runs on Linux to handle tasks, such as responding 
to network traffic, without any visible screen output. 

end user — An individual who uses the computer systems in an organization to accom- 
plish assigned tasks, but relies on a system administrator to keep those systems running 
gnoothly. 

find — Linux command used to search the file system for files matching certain 
characteristics. 

grep — Linux command used to search within files for lines containing a certain pattern. 

Help Desk — A service in many organizations that assists end users in solving problems 
related to information technology. 

info — Linux command used to access online command reference information. 

Information Systems Department (IS) — T he area of an organization in which the 
gaff are responsable for maintaining computer and information systems that support the 
employees in their work (also called the IT Department in some organizations). 

Information Technology Department (IT) — Se Information Systems D epartment. 

kill — Linux command used to end a process. 

LinuxC onf — Graphical configuration and administration utility for Linux, developed 
and supported by R ed H at Software. 

locate — Linux command used to search an index of the file system for items matching 
a given pattern. 

man page — An online reference documenting a Linux command. 


260 


Chapter7 The Role of the System Administrator 


pipe — A connection between two Linux commands (indicated by the | character) that 
causes the output of one command to be used as the input of a second command. 

plain-text configuration file — A file containing human-readable instructions that are 
used by a program to set its configuration information. 

process — A tax running on a Linux operating sytem, managed by the Linux kernel. 

process ID (PID) — A number from 1 to 65,000 that is associated uniquely with a 
process running on a Linux system. 

program — An imprecise term used to refer to any process running on a Linux system. 

ps — Linux command that provides information about processes running on Linux. 

redirection — The concept of changing the location where a Linux program receives its 
input and sends its output in order to increase flexibility and interaction with other 
Linux programs. 

regular expression — A system of expressing patterns using special characters that can be 
interpreted by many Linux programs. 

safedelete — A type of utility that makes files appear to have been deleted but actually 
saves a compressed copy of each one in case it is needed later. 

SAGE (System Administrators Guild) — A professional organization for system 
administrators. 

standard error (STDERR) — The channel used by mos Linux programs to send infor- 
mation about errors in program execution. 

standard input (STDIN) — The communication channel used by mos Linux programs 
to collect input (normally from the keyboard). 

standard output (STDOUT) — The communication channel used by mos Linux pro- 
grams to write output (normally to the screen). 

syntax — A formalized arrangement of information to allow a Linux command to 
understand parameters, options, and so forth. 

thread — A piece of a process (or a piece of a daemon, Since a daemon is a type of 
proces). T he distinction between processes and threads is not important for most system 
administration work. Instead, the term process is used in most cases that don’t involve 
programmers developing software for multiprocessor computers. 

utility — An imprecise term referring to a program used to administer a computer system 
rather than do work for an end user. 

YAST — A graphical configuration utility developed by the makers of SuSE Linux. 


REVIEW QUESTIONS 


1. Why are nontechnical skills like curiosity and creativity important to being a succes- 
ful sytem administrator? 


2. Name one key advantage of using multiple plain-text configuration files in Linux. 
a. They are compatible with configuration files from other operating systems. 


b. Several system administrators can access the same configuration file at the 
same time. 


10. 


Review Questions 261 


c. If one configuration file becomes corrupted, none of the other system services are 
affected. 


d. Special utilities are required to change system configuration settings. 


. Which of these tasks is not likely to be assigned to you as a system administrator? 


a. Develop anew cash register system using C programming. 
b. Install new hard disks in Linux servers. 

c. Teach new users how to access their e-mail accounts. 

d. Attend a conference on improving system security. 


A runs a subtask as part of a larger task, often on a multi- 


processor system. 
a. daemon 

b. process 

c. thread 

d. utility 


. Name two disadvantages to using any of the current graphical Linux 


configuration/ administration tools. 


. Name three graphical tools that are used either for general sytem administration or 


for administration of a specific service (such as aWeb server). 


. Which of the following does not have correctly formed options? 


a ls --help 
b. ls --color -R 
C. ls -il -aX --reverse 


d. 1s -sort=time 


. A pipe isa method of connecting processes with daemons True or False? 
. The command 1s | sort causes the following to occur: 


a. The output of the 1s command is sent to the sort command.T he results are 
printed to the screen. 


b. It cannot be determined without information about the next command to be 
executed. 


c. The output of the 1s command is written to a file named sort. 


d. The output of the 1s command is filtered based on the regular expression con- 
tained in the file sort. 


A regular expression is used to: 

a. define a list of threads that a process can execute 
b. assign values to variables 

c. define a complex pattern used for searching 

d. build filenames from component parts 


262 Chapter 7 The Role of the System Administrator 


11. 


12. 
13. 


14. 


15. 


16. 


17. 
18. 


W hen you run a program called gather_data, it normally reads lines entered at the 
keyboard. If you use the command gather_data < input_text to run the pro- 
gram, the following occurs: 


a The gather_data command is executed followed by the input_text command. 


b. The input that the gather_data program would normally read from the key- 
board is taken from the input_text file instead. 


c. The input_text program runs first, collecting data, which is then passed through 
a pipe to the gather_data program. 


d. Both gather _data and input_text run as concurrent processes reading from 
the keyboard as STDIN. 


Describe the difference between find and locate. 


The regular expression [cC ]hapter0[12345]* will not match which of the 
following files: 


a chapter01 

b. Chapter03.doc 

C. Chapterl.doc 

d. Chapter02 

The find command should be used instead of the locate command when: 
a. your locate index has not been updated recently 

b. the number of processes on the system is large 

c. you prefer to use grep at the same time 

d. the file system appears to be unstable 

The grep command is not useful for which of the following: 

a. Searching for all filenames that match a pattern 

b. Determining which directories are currently in use 

c. Finding lines of text that contain a certain word 

d. Locating specific information in the output of another command 


The locate command uses a prebuilt index of your file system to search for file 
information. True or False? 


Describe the difference between ps and kill. 


Linux filenames can be eight characters with a three character extension, but a longer 
filename is also stored for reference. True or False? 


Hands-on Projects 263 


19. The rm command is used in Linux to: 
a. remove special characters from a filename 
b. delete files from a hard disk 
c. remove case- sensitivity settings 
d. manage regular expressions 
20. Only command names are case sensitive in Linux. True or False? 


21. Name three methods of learning about Linux commands as you work at a 
command line. 


22. All Linux systems use a trashcan facility to save deleted files True or False? 
23. Describe the errorsin thiscommand: Ls /help 
24. The ps command does not provide information about: 

a. who started a process 

b. the number assigned to a process 

c. the current status of the process 

d. when the threads of the process expire 
25. The kill command is used to end: 

a. a process 

b. a thread 

c. a usr account 

d. a locate query 


HANDS-ON PROJECTS 


3 Project 7-1 
‘vee In this activity you access the SAGE Web page to learn about conference events for sytem 
administrators. As you learn about the events, you can see what topics are presented to sys 
tem administrators seeking to improve their skills To start the exercise, you should be at a 
computer with an Internet connection and aWeb browser. 


264 Chapter7 The Role of the System Administrator 


To find information about system administrator conferences: 


1. Enter http:/ / www.usenix.org/ sage/ on the Location or Address line of your 
browser.T he SAGE Web page appears, as shown in Figure 7-9.T he SAGE Web page 
contains information for professional sytem administrators. 


2. Click the Events link on the SAGE Web page. A list of recent and forthcoming 
events is displayed. (T he events listed change over time) 


3. Click the link for one of the listed events near your area. (You may also choose to 
select a conference event with a topic that is of special interest to you, such as security 
or the Web.) 


4. Locate a link on the page for the event that you have chosen that describes the pro- 
gram for the conference.T he name of this link varies with each event.You may also 
choose a link that shows information about past conferences and their topics. 


Netscape: SAGE - Home Page 
File Edit View Go Communicator 
=~ 2 3 &% a w + S 
Back Forward Reload Home Search Netscape Print = Security 
————— a a 
A Special Technical Group of the USENIX Association. To join SAGE, you must be a member of 
USENIX. 
@ TheSAGEFAQ @ Special Projects @ What's New 
Basic information on SAGE, SAGE Certification and the SAGE News items and pointers to new 
including member benefits and Mentoring project are two ongoing additions to the SAGE Web 
how to join. SAGE logo for projects sponsored by the SAGE site. 
your Web page. Executive Committee. 
@ Supporting members @ Events @ Speakers Bureau 
List of organizations that Calendar of conferences and Find a speaker for your event. 
support USENIX and SAGE events relating to System You can also register as a 
Administration. speaker. 
@ = Sysadmin’s Comer @ People @ = In Print 
A collection of information Who is involved in SAGE: the Columns from ;login:, details of 
that is helpful to System current and past boards, SAGE the SAGE Short Topics in 
Admins Awards, election information. System Adminstration series, 
and the SAGE Code of Ethics 
@ SAGE Job Center @ Salary Profiles @ Local User Groups 
Have a job? Want one? Check SAGE conducts System SAGE actively supports other 
out the SAGE Job Administrator Profile survey at groups with similar interests 
Descriptions LISA and other SAGE-sponsored See if there is a group in your 
conferences. Salary vs. job area, and if not, how to set one 
voononcihilitice ava tahnlatad zn 
=] | 8 SP Ea) Ze 


Figure 7-9 SAGE Web page 


Case Projects 265 


Project 7-2 

‘see In this activity you practice uing some of the commands described in this chapter.To complete 
this project, you should be logged on to a standard Linux sytem using a regular user account. 
To practice Linux commands: 


1. Type cp /etc/termcap ~/testfile to create a practice file. T his copies a system 
file to your home directory. 


2. Type 1s -1 to lig the filesin your home directory. M ake certain the test file is listed. 
N ote the file's Sze and the date it was created. 


3. Type mkdir archive to create a subdirectory to hold the file 

4. Type mv testfile archive to move the sample file to the new directory. 

5. Type cd archive to change your working directory to the new directory. 
6. Type pwd to check which directory you are working in. 

7. Type 1s -1 to list the contents of the new directory. 

8. Type grep Linux testfile to search the tes file for the tring Linux. 

9 


. Type grep Linux testfile > results to repeat the search, but this time write 
the results to a file. 


10. Type cat results to review the contents of the results file 


11. Type rm -i testfile results to delete the test file and results file W hat does 
the -i parameter do? H ow would you now delete the archive directory? 


Project 7-3 
"neei In this project you view information about the processes running on your Linux sytem.To 
complete this project, you should be logged on to a standard Linux system using a regular 
user account. 
To view information about Linux processes: 
1. Type ps to list the processes that you have started in your current Linux session. 
2. Type ps ax to list all of the processes running on your Linux system for all users. 


3. Type ps ax | more to view the ps output one screen at a time N ote that this 
command uses a pipe to combine the ps command with the more command. 

4. Type ps ax | grep httpd to search the output of the ps command.T his com- 
mand uses grep to find out the number of Web servers (httpd daemons) running 
on your Linux system. 


266 Chapter7 The Role of the System Administrator 


CASE PROJECTS 


1. You’ve been working at Tyson Electronics as a system administrator for about three 
months. M ost of the employees are highly trained in technical topics and use their 
computers for all of their daily work, which includes sending e-mail to colleagues 
around the world. 


One of the product managers approaches you with a belligerent tone and insists that 
you improve the system response time so he can download large e-mail messages 
faster.You realize that increasing the speed of the company’s Internet connection 
involves a substantial cot. How could you respond to the product manager’s request 
while maintaining a good relationship with all employees? D escribe the probable 
effects on your relationships with all employees and the company’s success if you were 
to retaliate against the belligerent manager by sowing down his connection or creat- 
ing other technical problems on his account. W hat if your actions were discovered? 


2. The ClO of Big Brother Corp. is concerned that some employees are spreading rumors 
about the company’s financial status to colleagues in other companies. She asks you to 
collect all the e mail messages sent by two employees who are under the mos suspicion 
so they can be reviewed by management. T he messages are archived and available to you 
as sytem administrator; you also have the ability to capture new messages as they are sent. 
The company has a policy stating that e-mail is subject to review, but no one really 
expects that others will read their mail.W hat is your reaction to the demand of the ClO? 
Do you feel you have an ethical obligation to remind employees of the corporate policy 
so they are more careful in their use of company resources? If the company didn’t have a 
policy about reading employees e-mail and you left the company because of an incident 
such as this, what would you tell your next potential employer about why you left? 


3. While checking the available free hard disk pace on the server, you notice an employee 
using an inordinate amount of disk pace. O n examining a few of the employee's numer- 
ous files, you discover that the majority contain offensive material.W hat action might you 
take towards this employee? H ow will the company’s ated policies regarding employee 
privacy and use of company resources affect your actions? Are your own actions subject 
to review? 


